Am 07.03.2017 um 14:31 schrieb Matus UHLAR - fantomas: > On 07.03.17 00:43, Christian wrote: >> why is there a 'TLSCertificateChainFile' option when >> 'TLSCACertificateFile' can also handle Certificate Chains ? > > you may have the chain file stored separately. separate from what ?
> we often do this. > AFAIK ... when having one Cert which is signed by one CA (which is not a intermediate CA), then I would use 'TLSCACertificateFile' .. And when I have a RootCA -> intermediateCA -> Certificate, then I could create a ChainFile (RootCA -> intermediateCA) and can also use 'TLSCACertificateFile' which can handle chainfiles ... so why do I need 'TLSCertificateChainFile' ?? I don't get it ? I could understand when 'TLSCACertificateFile' is only for 'single' CA's and 'TLSCertificateChainFile' for 'multi' CA's to verify certification path. Thank you -- Christian ------------------------------------------------------------ https://join.worldcommunitygrid.org?recruiterId=177038 ------------------------------------------------------------ http://www.sc24.de - Sportbekleidung ------------------------------------------------------------
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Announcing the Oxford Dictionaries API! The API offers world-renowned dictionary content that is easy and intuitive to access. Sign up for an account today to start using our lexical data to power your apps and projects. Get started today and enter our developer competition. http://sdm.link/oxford
_______________________________________________ ProFTPD Developers List <[email protected]> https://lists.sourceforge.net/lists/listinfo/proftp-devel
